About This Process Pack

Deeply integrated with Service Manager, the Process Pack for IT GRC translates complex regulations and standards into authoritative control objectives and control activities for your IT organization’s compliance program. The process pack is designed to help customers understand and bind complex business objectives to their Microsoft infrastructure in an operationally efficient manner.

The final release of the Process Pack for IT GRC provides your organization with capabilities to simplify, strengthen, and manage your IT GRC program: The process pack allows your organization to:

Streamline your IT GRC process through a combination of policy enforcement and exception management. Streamline and strengthen your IT GRC compliance process through simplified exception management. With the exception management feature, you can now optimize your IT GRC process: easily define, classify, and manage noncompliance incidents, technology/service constraints, and justifiable exceptions. Simplified exception management allows you to create, approve, and report justifiable exceptions to control and assess the applicability of a given business/IT situation.

Drive data insights through comprehensive trend reporting. Drive deeper insights into your compliance health and status with comprehensive trend analysis and more comprehensive reporting. Proactively manage your IT compliance life cycle trends through multidimensional analysis across various measures, including control activities, risk factors, and exceptions, to strengthen your IT governance, risk management, and compliance program.

Stay current with the latest knowledge libraries. Use the process pack to automatically check, download, and keep abreast of the latest knowledge libraries through online and offline updates. This final release is designed to broaden your IT compliance scope with even more control activities for various Microsoft technologies, including Windows Server 2008 R2 SP1, Windows 7 SP1, and more.

IMPORTANT: The Process Pack for IT GRC is designed to facilitate compliance activities conducted by your organization’s IT experts, auditors, accountants, attorneys and other compliance professionals. The software does not replace those professionals. The Process Pack for IT GRC includes some control objectives and authority document citations plus libraries with some control activities and associated product value settings. These objectives, citations, controls and settings do not verify or guarantee fulfillment of your organization’s compliance obligations. It is the responsibility of your organization to choose the objectives, citations, controls and settings to use, modify, add or remove based on guidance from your organization’s compliance professionals. Reports and any other information provided by or generated from the software do not constitute professional compliance advice. You must consult compliance professionals to confirm compliance with specific governance, risk, and compliance authority documents.

Included in the Download

The Process Pack for IT GRC includes the following components:

ProcessPackforITGRC_amd64.exe

ProcessPackforITGRC_x86.exe

ProcessPackforITGRC_AuthoringLibraries.exe

ProcessPackforITGRC_Documentation.exe

Process Pack for IT GRC - Developers Guide.docx

Process Pack for IT GRC - Evaluation and Deployment Guide.docx

Process Pack for IT GRC - Operations Guide.docx

Process Pack for IT GRC - Release Notes.rtf

Related Resources

Take advantage of the following related resources for the IT GRC Process Pack:

Microsoft System Center 2012. System Center Service Manager 2012, a System Center suite of products, delivers an integrated platform to automate and adapt IT service management best practices to meet your organization’s requirements.

Monitor Key Security Controls to Prevent Data Breach. Learn how to use the free Microsoft Security Compliance Manager (SCM) tool to help you monitor security update status, identify changes to the administrators group, and report on the use of whitelists using the desired configuration management (DCM) feature in System Center Configuration Manager.

Community and Feedback

To join in the greater GRC conversation, visit the Security and Compliance Management Forum. Ask questions to compliance experts and collaborate with your peers on IT GRC-related compliance management issues.

Download This Process Pack

The Process Pack for IT GRC provides end-to-end IT governance, risk, and compliance (GRC) management and automation for desktop and datacenter computers.